|
|
 Remote and Local File Inclusion ExplainedGordon Johnson The article presents what remote file inclusion and local file inclusion are and how to execute them. Writing IPS Rules – Part 3Matthew Jonkman It is a third part of Matthew's new column series on writing IPS Rules. Self Exposure by Dr. Gary McGrawGary McGraw is CTO of Cigital and an author of many IT Security publications. In this article he tells hakin9 readers about his job, experiences and IT security. Alternate Data Streams or “Doctor Jekyll and Mr. Hyde” move to NTFSLaic Aurelian This article shows everything you should know about ADS, focusing on its practical use. Consumers Test - We help you choose the most reliable firewallPete Herzog Consumers test Firewallsand share their opinions. The goal is to help the readers make a right choice when choosing the software. Analyzing Malicious CodeHardik Shah, The article presents the various techniques and tools used for analyzing malicious code. Includes a tutorial on how to examine the NetSky-P worm. Virtualization and Virtual Machine Software. We help you to choose the best VMDan Kusnetzky Consumers tests on Virtual Machines. Our goal is to help the readers a right decision when choosing a VM. VoIP SecurityLuca Leone, For companies, using VoIP is an easy way for communication between their several branches and for their teleworking employees; many users choose the VoIP to leave behind the traditional telephonic companies and to pay cheaper bills... Data Recovery SoftwareClint P. The choices of data recovery software range from free to thousands of dollars. There are many differences between open source and commercial software, and data recovery is no exception. Cost will be the determining factor for many who are in need of software to recover lost data. A good rule of thumb is to consider what the data is worth to you before you spend money on it. If you lost a bunch of mp3’s or rar’s that can easily be re-downloaded, then open source may be the way to go. Defending the Oracle Database with Advanced Security FeaturesMikoláš Panský The article provides general information on Oracle, teaches a basic hacking Oracle method and basic Oracle defense techniques. Choosing a Router for Home Broadband ConnectionRouterTech.org Support Consumers tests on routers. Our goal is to help the readers to make a right choice when buying, choosing a router. Designing a crypto attack on the Ccrp (bit shuffling) cipherDale Thorn You will get to know some most important things connected with crypto attacks. The author writes about the conventional attacks, about how to host and prepare the crypto attack. Analysing and Mapping Wireless NetworksAndrew Komarov This writing provides some great information on Wi -fi positioning, creating a wardriver's map and running common attacks in the wireless infrastructure. Snort_inline as a solutionPierpaolo Palazzoli, From this article you will learn how Snort_inline works, what are the basics of Intriusion Prevention Systems and how to tune Snort_inline configuration. authors also present the ways to add a dedicated device which is best suited for the environment we want to protect. An interview with Dr. Gary McGrawOur expert on IT security situation, careless private users, vulnerabilieties in the systems and hackers community. Simple Event Correlator for real-time security log monitoringRisto Vaarandi Over the past decade, event correlation has become a prominent event process in technique in many domains. However, existing open-source log monitoring tools don't support it well. We present what correlation is, what was the motivation for its developing and how to employ SEC for monitoring and correlating events from security logs. Cryptography for Mail and DataLars Packschies Should we put our confidencial information in an e-mail and send it around the world? What is the cryptography role in more secure communication? We present how to set up and use keys GnuPG and how encrypt data on the filesystem level. Introduction to XPath Injection techniquesJaime Blasco An XPath Injection attack is one of the latest techniques employing manipulating XPath queries in order to extract information from an XML database. Having read this article you will know, for example, how to employ XPath injection method to bypass safeguards in certain applications. Tested products - security scanners.A new section in hakin9! In this edition we present our readers' opinions on advantages & disadvantages of security scanners. You can find out if the prizes are adequate to the quality, what are the main problems that the users experienced and finally you will see the rating. Firewall leak testingDavid Matousek In this section we present our readers' opinions on advantages & disadvantages of firewalls they have used. You can find out if the prizes are adequate to the quality, what are the main problems that the users experienced and finally you will see the rating. |
